[Assignment-7] hardcoded authorized public keys

2024-07-03 16:45:54 +02:00 · 2024-07-03 16:45:54 +02:00 · 118d7385e8
commit 118d7385e8
parent cd43a6744a
1 changed files with 13 additions and 1 deletions
--- a/7-SGX_Hands-on/src/enclave/enclave.c
+++ b/7-SGX_Hands-on/src/enclave/enclave.c
@ -53,6 +53,17 @@
 #define SI_SIZE 2*SK_SIZE
 #endif

+const sgx_ec256_public_t authorized[2] = {
+    {
+        0,
+        0
+    },
+    {
+        0,
+        0
+    }
+};
+
 int get_sealed_size() {
    return sgx_calc_sealed_data_size(PK_SIZE, SK_SIZE);
 }
@ -238,6 +249,7 @@ sgx_status_t verify_firmware(const uint8_t *data, uint32_t data_size, const uint
    if(public_key != NULL) {
        // invalid public key
        if(public_key_size != PK_SIZE) {
+            sgx_ecc256_close_context(ecc_handle);
            return SGX_ERROR_INVALID_PARAMETER;
        }

@ -253,7 +265,7 @@ sgx_status_t verify_firmware(const uint8_t *data, uint32_t data_size, const uint

    // verify signature
    uint8_t result;
-    sgx_status_t verification_status = sgx_ecdsa_verify((const uint8_t *)data, data_size, (const sgx_ec256_public_t *)&public, (const sgx_ec256_signature_t *)&ecc_signature, &result, ecc_handle);
+    sgx_status_t verification_status = sgx_ecdsa_verify(data, data_size, (const sgx_ec256_public_t *)&public, (const sgx_ec256_signature_t *)&ecc_signature, &result, ecc_handle);

    // handle failed verification process
    if(verification_status != SGX_SUCCESS) {